AMENDMENTS TO THE CLAIMS 



This listing of claims will replace all prior versions, and listings, of claims 
in the application: 

Listing of Claims: 

1 1 . (Currently amended) A method to facilitate locking an adversary out of 

2 a network application, comprising: 

3 receiving at a server a request, including an authentication credential, to 

4 access the network application, wherein the authentication credential includes a 

5 user identifier associated with a user and a network address of a user device; 

6 examining an audit log to determine if the user identifier has been locked 

7 out from the network address; and 

8 if the user identifier has been locked out from the network address, 

9 denying access to the network application; 

10 otherwise, checking the authentication credential for validity, and 

11 if the authentication credential is valid, 

12 allowing access to the network application, 

13 otherwise, 

14 logging a failed attempt in the audit log, wherein 

1 5 imposing a lockout for t he user identifier is locked 

16 etrt-from the network address after a threshold number of 

17 i failed attempts from the network address , 

1 8 imposing a global lockout for the user identifier 

19 after a threshold number of network addresses are locked 

20 out for the user identifier, and 

21 denying access to the network application; 

2 
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23 



whereby the adversary is prevented from accomplishing an attack by 
masquerading as the user. 



1 2 (Canceled). 

1 3. (Previously presented) The method of claim 1, further comprising: 

2 removing a lockout after a predetermined period of time. 

1 4. (Previously presented) The method of claim 1 , further comprising: 

2 manually removing a lockout by an administrator of the server. 

1 5. (Original) The method of claim 1, wherein the authentication credential 

2 includes a user name and a password. 

1 6. (Original) The method of claim 5, wherein checking the authentication 

2 credential for validity involves: 

3 verifying that an administrator has authorized access to the network 

4 application for a combination of the user name and the password; and 

5 determining if the request violates an access rule in a rule table. 

1 7. (Original) The method of claim 6, wherein the access rule can specify: 

2 an allowed time-of-day; 

3 an allowed number of access attempts; 

4 an allowed network address; and 

5 an allowed network domain. 

1 8. (Original) The method of claim 1, wherein the network address includes 

2 an Internet Protocol address. 

3 
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1 9. (Currently amended) A computer-readable storage medium storing 

2 instructions that when executed by a computer cause the computer to perform a 

3 method to facilitate locking an adversary out of a network application, 

4 comprising: 

5 receiving at a server a request, including an authentication credential, to 

6 access the network application, wherein the authentication credential includes a 

7 user identifier associated with a user and a network address of a user device; 

8 examining an audit log to determine if the user identifier has been locked 

9 out from the network address; and 

10 if the user identifier has been locked out from the network address, 

1 1 denying access to the network application; 

12 otherwise, checking the authentication credential for validity, and 

1 3 if the authentication credential is valid, 

14 allowing access to the network application, 

15 otherwise, 

16 logging a failed attempt in the audit log, wh e r e in 

1 7 imposing a lockout for the user identifier is locked 

1 8 euMrom the network address after a threshold number of 

1 9 failed attempts from the network adddress , 

20 imposing a global lockout for the user identifier 

2 1 after a threshold number of network addresses are locked 

22 out for the user identifier, and 

23 denying access to the network application; 

24 whereby the adversary is prevented from accomplishing an attack by 

25 masquerading as the user. 

1 10 (Canceled). 
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1 11. (Previously presented) The computer-readable storage medium of 

2 claim 9, the method further comprising: removing a lockout after a predetermined 

3 period of time. 

1 12. (Previously presented) The computer-readable storage medium of 

2 claim 9, the method further comprising: manually removing a lockout by an 

3 administrator of the server. 

1 13. (Original) The computer-readable storage medium of claim 9 5 wherein 

2 the authentication credential includes a user name and a password. 

1 14. (Original) The computer-readable storage medium of claim 13, 

2 wherein checking the authentication credential for validity involves: 

3 verifying that an administrator has authorized access to the network 

4 application for a combination of the user name and the password; and 

5 determining if the request violates an access rule in a rule table. 

1 15. (Original) The computer-readable storage medium of claim 14, 

2 wherein the access rule can specify: 

3 an allowed time-of-day; 

4 an allowed number of access attempts; 

5 an allowed network address; and 

6 an allowed network domain. 

1 16. (Original) The computer-readable storage medium of claim 9, wherein 

2 the network address includes an Internet Protocol address. 
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1 17. (Currently amended) An apparatus to facilitate locking an adversary 

2 out of a network application, comprising: 

3 a receiving mechanism that is configured to receive at a server a request, 

4 including an authentication credential, to access the network application, wherein 

5 the authentication credential includes a user identifier associated with a user and a 

6 network address of a user device; 

7 an examining mechanism that is configured to examine an audit log to 

8 determine if the user identifier has been locked out from the network address; and 

9 an access mechanism that is configured to deny access to the user 

10 identifier if the user identifier has been locked out from the network address; 

1 1 a validation mechanism that is configured to check the authentication 

12 credential for validity, wherein the access mechanism is further configured to 

13 allow access if the authentication credential is valid; 

14 a logging mechanism that is configured to log a failed attempt in the audit 

1 5 log, wh e rein the us e r id e ntifi e r is lock e d out from th e network addr e ss aft e r a 

1 6 thr e shold number of failed att e mpts, and wherein the access mechanism is further 

1 7 configured to deny access to the user identifier after a failed access attempt; 



1 8 a lockout mechanism that is configured to impose a lockout for the user 

19 identifier from the network address after a threshold number of failed attempts 

20 from the network address: 

21 wherein the lockout mechanism is further configured to impose a g lobal 

22 lockout for the user identifier after a threshold number of network addresses are 

23 locked out for the user identifier; and 

24 whereby the adversary is prevented from accomplishing an attack by 

25 masquerading as the user. 

1 18 (Canceled). 
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1 19. (Previously presented) The apparatus of claim 17, further comprising: 

2 a lockout removing mechanism that is configured to remove a lockout after a 

3 predetermined period of time. 

1 20. (Previously presented) The apparatus of claim 17, further comprising: 

2 a lockout removing mechanism that is configured to allow an administrator of the 

3 server to manually remove a lockout. 

1 21 . (Original) The apparatus of claim 17, wherein the authentication 

2 credential includes a user name and a password. 

1 22. (Original) The apparatus of claim 21, further comprising: 

2 a verification mechanism that is configured to verify that an administrator 

3 has authorized access to the network application for a combination of the user 

4 name and the password; and 

5 a violation determining mechanism that is configured to determine if the 

6 request violates an access rule in a rule table. 

1 23. (Original) The apparatus of claim 22, wherein the access rule can 

2 specify: 

3 an allowed time-of-day; 

4 an allowed number of access attempts; 

5 an allowed network address; and 

6 an allowed network domain. 

1 24. (Original) The apparatus of claim 17, wherein the network address 

2 includes an Internet Protocol address. 



7 

EJG E:\Oracle Corporation\OR01\OR01-15901\Amendment B OR01-15901.doc 



